Lucene search
UbuntuUSN-648-1HistorySep 30, 2008 - 12:00 a.m.
nasm vulnerability
2008-09-3000:00:00
ubuntu.com
50
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.8
Confidence
Low
EPSS
0.014
Percentile
86.6%
Releases
- Ubuntu 8.04
Packages
- nasm -
Details
Philipp Thomas discovered that the ppscan function of nasm contained
an off-by-one error. If a user or automated system were tricked into
assembling a specially crafted ASM file, a remote attacker could execute
arbitrary commands with user privileges.
References
Related
openvas
openvas
Ubuntu Update for nasm vulnerability USN-648-1
2009-03-23 00:00:00
Ubuntu: Security Advisory (USN-648-1)
2009-03-23 00:00:00
Mandriva Update for nasm MDVSA-2008:120 (nasm)
2009-04-09 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : nasm (MDVSA-2008:120)
2009-04-23 00:00:00
Ubuntu 8.04 LTS : nasm vulnerability (USN-648-1)
2009-04-23 00:00:00
cve
cve
CVE-2008-2719
2008-06-16 23:41:00
CVE-2008-7177
2009-09-08 10:30:01
nvd
nvd
CVE-2008-2719
2008-06-16 23:41:00
CVE-2008-7177
2009-09-08 10:30:01
ubuntucve
ubuntucve
CVE-2008-2719
2008-06-16 00:00:00
CVE-2008-7177
2009-09-08 00:00:00
exploitdb
exploitdb
NASM 2.0 - 'ppscan()' Off-by-One Buffer Overflow
2008-06-21 00:00:00
prion
prion
Stack overflow
2008-06-16 23:41:00
Buffer overflow
2009-09-08 10:30:00
cvelist
cvelist
CVE-2008-2719
2008-06-16 23:00:00
CVE-2008-7177
2009-09-08 10:00:00
debiancve
debiancve
CVE-2008-2719
2008-06-16 23:41:00
CVE-2008-7177
2009-09-08 10:30:01
redhatcve
redhatcve
CVE-2008-7177
2015-10-30 09:47:01
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
6.8
Confidence
Low
EPSS
0.014
Percentile
86.6%
Related for USN-648-1